MDKSA-2002:084

Problem description

A vulnerability was discovered in pine while parsing and escaping
characters of email addresses; not enough memory is allocated for
storing the escaped mailbox part of the address. The resulting
buffer overflow on the heap makes pine crash. This new version of
pine, 4.50, has the vulnerability fixed. It also offers many other
bug fixes and new features.